Amazon AI coding agent hacked to inject data wiping commands
A hacker slipped a wiper intoAmazon Qv1.84.0 via a dodgy GitHub pull. AWS revoked every key, nuked the rogue commit, then rolled outAmazon Q v1.85.0...
 Posts from @v.adams15..
Posts from @v.adams15..A hacker slipped a wiper intoAmazon Qv1.84.0 via a dodgy GitHub pull. AWS revoked every key, nuked the rogue commit, then rolled outAmazon Q v1.85.0...

Alibaba unleashedQwen3-Coder, a480B-parameter MoE titan. It ignites35Bparameters per token to code, debug, and automate workflows. It spans256Ktokens of contextâand can stretch to a million. It ships asQwen3-Coder-480B-A35B-Instructon Hugging Face and GitHub. It hooks intoQwen CodeCLI orClaude Code...

OpenAI set to launch GPT-5 in August, blending distinct models for versatile AI functionality. Watch for potential delays due to development hurdles or competitor announcements.Implication: OpenAI is shifting from "one model fits all" to a modular AI architecture. Expect future LLMs to act more like..
Pulumi ESC corrals secrets from 20 + storesâVault, AWS, Azure, GCPâinto a singleYAML config-as-codeengine. It spawns dynamic short-lived credentials and locks every action behind a centralized audit log. Existing secret stores stay intact. Retrieval hitssub-secondspeeds. Envelope encryption shields ..
The Gemini CLI on Windows bungled a failedmkdir. It flagged the error as success, then ranmovecommands. Files landed in a ghost folder and got overwritten. Data vanished. WindowsmkdirsetsERRORLEVELon failure.movetreats missing targets as rename directives. No exit-code checks. No read-after-write ve..
Scott Alexanderâs team argues that AI is aprofoundly abnormal technologyon track forrecursive self-improvementwithin2â10 years. They counter (AIANT)âs view (AI As A Normal Technology) of slow, regulated diffusion by showing thatLLMsare rapidly adopted in medicine, law, and software â bypassing insti..

Bugbot hunts bugs in PR diffs, flagging logic slip-ups and strange edge cases. It then detects security gaps, blending top LLMs with custom heuristics. It plugs into the Cursor dashboard and runs dedicated Bugbot rules.Beta stats: 1M+ reviews, 1.5M+ issues found. Half the bugs are fixed before merge..
![[Cursor] Bugbot is out of beta](https://cdn.faun.dev/prod/media/public/images/cursor-bugbot-is-out-of-beta-1d97.width-545.format-webp.webp)
AI agents tap MCP servers andStrands Agents. They fire off tools that chart IAM permission chains and sniff out AWS privilege escalations. Enter the âSum of All Permissionsâ method. It hijacks EC2 Instance Connect, warps through SSM to swipe data, and leaps rolesâlong after static scanners nod off. ..

An AI-powered dev workflow combinedClaude,Playwright, and aPostgres-backed REST APIto ship 2â3 features per day. But as complexity grew, multi-agent loops broke down, tests ballooned, and schema drift demanded increasingly precise prompts and manual corrections.The result: more time spent managing c..

Post maps out aKubeflow Pipelinesworkflow onSpark,Feast, andKServe. It tackles fraud detection end-to-end: data prep, feature store, live inference. It turns infra into code, ensures feature parity in train and serve, and registers ONNX models in theKubeflow Model Registry...
